Home News Computing (Image credit: Shutterstock/Chor muang) A new Microsoft Exchange flaw is being used to attack servers and deliver remote access tools and remote administration software, researchers have revealed.Cybersecurity experts from CrowdStrike stumbled upon a new exploit chain while investigating a Play ransomware attack. After further analysis, it was concluded that the exploit chain bypasses mitigations for the ProxyNotShell URL rewrite flaw, allowing threat actors remote code execution (RCE) privileges on target endpoints (opens in new tab).They dubbed the exploit OWASSRF, and explained that the attackers leveraged Remote PowerShell to abuse flaws tracked… Click below to read the full story from TechRadar
Read More